auditing-cloud-cluster-security
Pass
Audited by Gen Agent Trust Hub on Mar 23, 2026
Risk Level: SAFE
Full Analysis
- [SAFE]: The skill is authored by the official vendor 'cockroachlabs' and targets their own 'ccloud' and 'cockroach' CLI tools.
- [SAFE]: All operations defined in the assessment workflow and reference files are strictly read-only, using 'SHOW' and 'SELECT' SQL queries and 'list' or 'info' CLI subcommands.
- [SAFE]: The skill follows security best practices by recommending dedicated audit roles with minimal privileges (VIEWACTIVITYREDACTED) rather than requiring full admin access.
- [SAFE]: Sensitive data management is handled safely; the instructions explicitly state that connection strings and tokens should not be included in the generated report output.
- [SAFE]: External dependencies like 'openssl' and 'sslyze' are standard, well-known security tools used for legitimate TLS probing purposes.
Audit Metadata